blob: 8da4bfacf4826c4f03772673ecd6a051e5305572 (
plain) (
blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
|
Candidate: CVE-2007-5501
References:
http://git.kernel.org/git/?p=linux/kernel/git/torvalds/linux-2.6.git;a=commit;h=96a2d41a3e495734b63bff4e5dd0112741b93b38
Description:
Ubuntu-Description:
Ilpo Järvinen discovered that it might be possible for the TCP stack
to panic the kernel when receiving a crafted ACK response. Only Ubuntu
7.10 contained the vulnerable code, and it is believed not to have
been exploitable.
Notes:
dannf> Jan Lieskovsky pointed out that tcp_write_queue_head() was introduced
dannf> in 2.6.21-git1
Bugs:
upstream: released (2.6.24-rc3), released (2.6.23.8)
linux-2.6: released (2.6.23-1)
2.6.18-etch-security: N/A
2.6.8-sarge-security: N/A
2.4.27-sarge-security: N/A
2.6.15-dapper-security: N/A
2.6.17-edgy-security: N/A
2.6.20-feisty-security: N/A
2.6.22-gutsy-security: released (2.6.22-14.47)
|